cancel
Showing results for 
Search instead for 
Did you mean: 

SAP GRC Access Control: Access Risk Analysis for Two Roles Combined

reza_ahoui2
Participant
0 Kudos

Hi

Assuming that single roles are cleansed from SOD risks, can someone explain how to do access risk analysis simulation for two roles combined? This is a situation when two roles might be considered to be given together for a job, position or user. We don't want to resort to a dummy object creation for this (dummy user, job or position).

Thanks

Reza Ahoui

Accepted Solutions (1)

Accepted Solutions (1)

madhusap
Active Contributor
0 Kudos

Hi Reza,

Simulation options you selected seems correct. However, I am just surprised that you are using "ACTION LEVEL" analysis as it can give you results with lot of false positives.

Other than that everything seems gud.

Regards,

Madhu

Answers (4)

Answers (4)

reza_ahoui2
Participant
0 Kudos

Thank you sir

reza_ahoui2
Participant
0 Kudos

Hi Madu

Thanks for raising the case of False Positive; I thought having Permission Level box checked along with Action Level would minimise such risk. Are you saying Permission Level would be enough on its own?

madhusap
Active Contributor
0 Kudos

Yes, using Permission Level is enough and no need to use ACTION level.

reza_ahoui2
Participant
0 Kudos

Hi Madu

Does this simulation setting look right to you?

madhusap
Active Contributor
0 Kudos

Hi Reza,

Role level simulation purpose is to analyze what happens if role A is given together with role B. Have you checked this option?

Regards,

Madhu